CVE-2014-5077 Kernel/SCTP: fix a NULL pointer dereference

A NULL pointer dereference flaw was found in the way the Linux kernel's Stream Control Transmission Protocol (SCTP) implementation handled simultaneous connections between the same hosts. A remote attacker could use this flaw to crash the system. References: - https://access.redhat.com/security/cve/CVE-2014-5077 - http://patchwork.ozlabs.org/patch/372475/ Signed-off-by: Liviu Gheorghisan <liviu.gheorghisan@enea.com>
author: Liviu Gheorghisan <liviu.gheorghisan@enea.com> 2014-09-18 10:22:37 +0200
committer: Zhenhua Luo <zhenhua.luo@freescale.com> 2014-09-26 15:17:46 +0800
commit: 0f90d0324e59f21f6d8fa3d40ee673d2455521f6 (patch)
tree: b64775781422f33697b5eddc6f4c2e746a76ee7d /recipes-kernel/linux/linux-qoriq_3.12.bb
parent: 478f29c3e97760f2ff443227950ce21d9510a280 (diff)
download: meta-fsl-ppc-0f90d0324e59f21f6d8fa3d40ee673d2455521f6.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/recipes-kernel/linux/linux-qoriq_3.12.bb b/recipes-kernel/linux/linux-qoriq_3.12.bb
index 4e9c50b..93a0bba 100644
--- a/recipes-kernel/linux/linux-qoriq_3.12.bb
+++ b/recipes-kernel/linux/linux-qoriq_3.12.bb
@@ -3,6 +3,7 @@ require recipes-kernel/linux/linux-qoriq.inc
 SRC_URI = "git://git.freescale.com/ppc/sdk/linux.git;nobranch=1 \
    file://powerpc-Fix-64-bit-builds-with-binutils-2.24.patch \
    file://Fix-for-CVE-2014-5045-fs-umount-on-symlink-leak.patch \
+    file://Fix-CVE-2014-5077-sctp-inherit-auth-capable-on-INIT-collisions.patch \
 "
 SRCREV = "c29fe1a733308cbe592b3af054a97be1b91cf2dd"
author	Liviu Gheorghisan <liviu.gheorghisan@enea.com>	2014-09-18 10:22:37 +0200
committer	Zhenhua Luo <zhenhua.luo@freescale.com>	2014-09-26 15:17:46 +0800
commit	0f90d0324e59f21f6d8fa3d40ee673d2455521f6 (patch)
tree	b64775781422f33697b5eddc6f4c2e746a76ee7d /recipes-kernel/linux/linux-qoriq_3.12.bb
parent	478f29c3e97760f2ff443227950ce21d9510a280 (diff)
download	meta-fsl-ppc-0f90d0324e59f21f6d8fa3d40ee673d2455521f6.tar.gz

diff --git a/recipes-kernel/linux/linux-qoriq_3.12.bb b/recipes-kernel/linux/linux-qoriq_3.12.bb index 4e9c50b..93a0bba 100644 --- a/recipes-kernel/linux/linux-qoriq_3.12.bb +++ b/recipes-kernel/linux/linux-qoriq_3.12.bb
@@ -3,6 +3,7 @@ require recipes-kernel/linux/linux-qoriq.inc
3	SRC_URI = "git://git.freescale.com/ppc/sdk/linux.git;nobranch=1 \	3	SRC_URI = "git://git.freescale.com/ppc/sdk/linux.git;nobranch=1 \
4	file://powerpc-Fix-64-bit-builds-with-binutils-2.24.patch \	4	file://powerpc-Fix-64-bit-builds-with-binutils-2.24.patch \
5	file://Fix-for-CVE-2014-5045-fs-umount-on-symlink-leak.patch \	5	file://Fix-for-CVE-2014-5045-fs-umount-on-symlink-leak.patch \
		6	file://Fix-CVE-2014-5077-sctp-inherit-auth-capable-on-INIT-collisions.patch \
6	"	7	"
7	SRCREV = "c29fe1a733308cbe592b3af054a97be1b91cf2dd"	8	SRCREV = "c29fe1a733308cbe592b3af054a97be1b91cf2dd"
8		9